SIW 2008-07-15
 SIW News

SIW - ClamAV False Positive




Why ClamAV reports SIW as infected with Exploit.DCOM.Gen?

SIW is not a virus. It has many functions;one of them is scanning the network (from menu Network --> Host Scans -->DCOM) for computers running DCOM.
Why ClamAV reports it as a virus? I don't know. Maybe they are searching for a specific sequence of bytes, sequence used by SIW to detect if a computer has DCOM patches applied.
Click here to see a picture Update: SIW 1.49 uses a different signature; ClamAV reports nothing.

If you're new here and like what you read, please subscribe to my blog feed My Blog Feed or sign up for free email updates.
Please send any comments, corrections or suggestions to siw@gtopala.com
If you like SIW you can buy me a coffee. If you like SIW you can buy me a coffee.

SIW - System Information for Windows. Copyright © 2004-2008 Topala Software Solutions.
Home             Contact Us             License Agreement             Privacy Policy                      Clicky Web Analytics

Clicky